CVE-2023-34261

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 3, 2023
Updated: Nov 13, 2023

Summary

CVE-2023-34261 is a vulnerability affecting Kyocera TASKalfa 4053ci printers up to firmware version 2VG_S000.002.561. This issue enables attackers to identify valid user accounts by observing the error messages returned during a login attempt. Instead of the usual "falsch" (incorrect) error message, the printer returns a "nicht einloggen" (not logged in) message, revealing the existence of a valid username. This vulnerability poses a risk for unauthorized access to the printer and potential further exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share